CVE-2026-32019

LOW EPSS 10.8%
Published Mar 19, 20263mo ago · Modified Apr 20, 20262mo ago
2.3 CVSS 4.0
Low
Find Similar
Published Mar 19, 2026 3mo ago
Last Modified Apr 20, 2026 2mo ago

Description

OpenClaw versions prior to 2026.2.22 contain incomplete IPv4 special-use range validation in the isPrivateIpv4() function, allowing requests to RFC-reserved ranges to bypass SSRF policy checks. Attackers with network reachability to special-use IPv4 ranges can exploit web_fetch functionality to access blocked addresses such as 198.18.0.0/15 and other non-global ranges.

CVSS Details

Base Score
2.3
Exploitability
Impact
Vector string
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope X

Threat Intelligence

EPSS Exploit Probability
10.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-918 Server-Side Request Forgery (SSRF) Validation

Affected Products 1

VendorProductVersionRange
openclawopenclaw* <2026.2.22

References 6

  • github.com https://github.com/openclaw/openclaw/commit/333fbb86347998526dd514290adfd5f727caa6d9
    Patch
  • github.com https://github.com/openclaw/openclaw/commit/44dfbd23df453e51b71ef79a148c28c53e89168c
    Patch
  • github.com https://github.com/openclaw/openclaw/commit/71bd15bb4294d3d1b54386064d69cd0f5f731bd8
    Patch
  • github.com https://github.com/openclaw/openclaw/commit/f14ebd743cfc73f667fae80af70043d0ab1f88bd
    Patch
  • github.com https://github.com/openclaw/openclaw/security/advisories/GHSA-4rqq-w8v4-7p47
    Vendor Advisory
  • vulncheck.com https://www.vulncheck.com/advisories/openclaw-incomplete-ipv4-special-use-range-blocking-in-ssrf-guard
    Third Party Advisory

Remediation

  • github.com https://github.com/openclaw/openclaw/commit/333fbb86347998526dd514290adfd5f727caa6d9
    Patch
  • github.com https://github.com/openclaw/openclaw/commit/44dfbd23df453e51b71ef79a148c28c53e89168c
    Patch
  • github.com https://github.com/openclaw/openclaw/commit/71bd15bb4294d3d1b54386064d69cd0f5f731bd8
    Patch
  • github.com https://github.com/openclaw/openclaw/commit/f14ebd743cfc73f667fae80af70043d0ab1f88bd
    Patch